[squid-users] Wrong client IP address in log file
Amos Jeffries
squid3 at treenet.co.nz
Fri Nov 25 14:36:20 UTC 2016
Could you send readable text in future please?
minified HTML is not something everyone can understand fluently.
FWIW, you seem to be confusing "client" with "user". Client is just
where the message is comming from when it arrived into Squid, not the
place it started travelling.
* If you have a router doing NAT in front of Squid then the client is
that router.
Don't do that. Seriously. CVE-2009-0801 has many side non-obvious
effects and really is very, very nasty.
Do routing with the router, and NAT intercept port 80 only on the Squid
machine.
* If you have DG in front of Squid then DG is the client for that Squid.
There is the X-Forwarded-For header mechanism which DG can use to tell
Squid where it got the message from.
How to receive it is documented in:
<http://www.squid-cache.org/Doc/config/follow_x_forwarded_for/>
The DG config detail is:
<http://dansguardian.org/downloads/detailedinstallation2.html#further>
Amos
More information about the squid-users
mailing list